[horde] Horde and IMP head HTML composition not working.

John Gates dimante at dimante.net
Fri Jan 25 12:40:49 UTC 2008



   Mike, 

      Thanks for the advice.  I created a new user in horde and as soon as I signed in as this user the HTML composition worked for that user and also the original user I had a problem with.  Not sure how that could be but that is exactly what I did.  

  Best Regards,
John Gates
Dimante Computer Services LLC
 http://www.dimante.netQuoting horde-request at lists.horde.org:

> Send horde mailing list submissions to
>         horde at lists.horde.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
>         http://lists.horde.org/mailman/listinfo/horde
> or, via email, send a message with subject or body 'help' to
>         horde-request at lists.horde.org
>
> You can reach the person managing the list at
>         horde-owner at lists.horde.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of horde digest..."
>
>
> Today's Topics:
>
>    1. Re: a mis-spelling (Chuck Hagenbuch)
>    2. Re: Horde and IMP head HTML composition not working.
>       (Michael M Slusarz)
>    3. Horde 3 expand.php exploit? (Nathan Lager)
>    4. Re: Horde 3 expand.php exploit? (Jan Schneider)
>    5. Re: Horde 3 expand.php exploit? (Nathan Lager)
>    6. Re: Updating all Kronolith user permissions (Ryan Steele)
>    7. Re: Vacation setting... (Ashley M. Kirchner)
>    8. Re: Vacation setting... (Andrew Morgan)
>    9. lightning set the calendar in read mode (Gerard Breiner)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Thu, 24 Jan 2008 10:41:38 -0500
> From: Chuck Hagenbuch <chuck at horde.org>
> Subject: Re: [horde] a mis-spelling
> To: horde at lists.horde.org
> Message-ID: <20080124104138.825124t6mwbbsezo at technest.org>
> Content-Type: text/plain;        charset=ISO-8859-1;        DelSp="Yes";
>         format="flowed"
>
> Quoting Brian Martinez <martinez_brain at hotmail.com>:
>
>> During a translation update in Ansel:
>>
>> #: templates/gallery/delete_confirmation.inc:5
>> msgid "Really empty this gallery and all of the phptos in it? This
>> action cannot be undone."
>>
>> "photos" is mis-spelled...
>
> Fixed.
>
>> PS.  Not trying to be a pain...just trying to help out.
>
> Absolutely! Thanks for the report.
>
> -chuck
>
>
> ------------------------------
>
> Message: 2
> Date: Thu, 24 Jan 2008 09:52:53 -0700
> From: Michael M Slusarz <slusarz at horde.org>
> Subject: Re: [horde] Horde and IMP head HTML composition not working.
> To: horde at lists.horde.org
> Message-ID: <20080124095253.16566nsep09v7mw4 at bigworm.curecanti.org>
> Content-Type: text/plain;        charset=UTF-8;        DelSp="Yes";        format="flowed"
>
> Quoting Michael Rubinsky <mrubinsk at horde.org>:
>
>> Quoting John Gates <dimante at dimante.net>:
>>
>>> Mike I am glad it is working for you.  Do you have any tips on how
>>> I  can find out why it is not working for me?  I have tried 10
>>> machines  already so it has to be something server side.
>>
>> Only thing that comes to mind is to make sure that your
>> framework/libraries are completely up to date and that they have
>> been  installed properly. You might also check your server and horde
>> logs to  see if there is anything of interest in them.
>
> Also, check javascript logs on your browsers to look for JS errors.
> And make sure you aren't using tinymce as your HTML editor in the prefs.
>
> michael
>
> --
> ___________________________________
> Michael Slusarz [slusarz at horde.org]
>
>
>
> ------------------------------
>
> Message: 3
> Date: Thu, 24 Jan 2008 12:10:14 -0500
> From: "Nathan Lager" <nathan at accufind.com>
> Subject: [horde] Horde 3 expand.php exploit?
> To: <horde at lists.horde.org>
> Message-ID:
>         <D55BCC746DBA104B9178CA926BCD275C01E85F at EXC-W-175.exmail.accu-find.com>
>
> Content-Type: text/plain;        charset="us-ascii"
>
> We have what appears to be an exploit in our horde 3 install.
>
> It looks like someone has used our webmail application to send out a ton
> of Spam.
>
> Looking through my access logs, I found things like this:
>
> /imp/expand.php?actionID=expand_addresses&field_name=bcc&field_value=som
> ename%4somedomain%2C%20someothername%4someotherdomain
>
> Each entry had about 50 addresses at a time.
>
> I don't know that this in itself is the exploit, but it definitely IS
> the attacker.
>
> At this point I cant be sure if he exploited the application, or
> actually compromised a user's mailbox.
>
> Any help in tracking this down would be much appreciated.
>
> Thanks!
>
> -----------------------------------------
> Nathan
> Network Administrator
> Accu-Find Internet Services
> 1-888-WEB-3371
>
>
>
>
> ------------------------------
>
> Message: 4
> Date: Thu, 24 Jan 2008 18:44:08 +0100
> From: Jan Schneider <jan at horde.org>
> Subject: Re: [horde] Horde 3 expand.php exploit?
> To: horde at lists.horde.org
> Message-ID: <20080124184408.14972seyn2gv7mu8 at neo.wg.de>
> Content-Type: text/plain;        charset=ISO-8859-1;        DelSp="Yes";
>         format="flowed"
>
> Zitat von Nathan Lager <nathan at accufind.com>:
>
>> We have what appears to be an exploit in our horde 3 install.
>>
>> It looks like someone has used our webmail application to send out a ton
>> of Spam.
>>
>> Looking through my access logs, I found things like this:
>>
>> /imp/expand.php?actionID=expand_addresses&field_name=bcc&field_value=som
>> ename%4somedomain%2C%20someothername%4someotherdomain
>>
>> Each entry had about 50 addresses at a time.
>>
>> I don't know that this in itself is the exploit, but it definitely IS
>> the attacker.
>>
>> At this point I cant be sure if he exploited the application, or
>> actually compromised a user's mailbox.
>
> Neither. He simply uses your webmail interface. This is a regular
> user, with valid credentials. Where he got them from is a different
> question.
>
> Jan.
>
> --
> Do you need professional PHP or Horde consulting?
> http://horde.org/consulting/
>
>
>
> ------------------------------
>
> Message: 5
> Date: Thu, 24 Jan 2008 13:35:28 -0500
> From: "Nathan Lager" <nathan at accufind.com>
> Subject: Re: [horde] Horde 3 expand.php exploit?
> To: <horde at lists.horde.org>
> Message-ID:
>         <D55BCC746DBA104B9178CA926BCD275C01E860 at EXC-W-175.exmail.accu-find.com>
>
> Content-Type: text/plain;        charset="us-ascii"
>
> Yep, not too long after I sent the message, I was able to track him down
> using horde's logs. Turns out he's a recent new user.
>
> Not any more.
>
> Thanks!
>
>
>
> -----------------------------------------
> Nathan
> Network Administrator
> Accu-Find Internet Services
> 1-888-WEB-3371
>
>
> -----Original Message-----
> From: horde-bounces at lists.horde.org
> [mailto:horde-bounces at lists.horde.org] On Behalf Of Jan Schneider
> Sent: Thursday, January 24, 2008 12:44 PM
> To: horde at lists.horde.org
> Subject: Re: [horde] Horde 3 expand.php exploit?
>
> Zitat von Nathan Lager <nathan at accufind.com>:
>
>> We have what appears to be an exploit in our horde 3 install.
>>
>> It looks like someone has used our webmail application to send out a
> ton
>> of Spam.
>>
>> Looking through my access logs, I found things like this:
>>
>>
> /imp/expand.php?actionID=expand_addresses&field_name=bcc&field_value=som
>> ename%4somedomain%2C%20someothername%4someotherdomain
>>
>> Each entry had about 50 addresses at a time.
>>
>> I don't know that this in itself is the exploit, but it definitely IS
>> the attacker.
>>
>> At this point I cant be sure if he exploited the application, or
>> actually compromised a user's mailbox.
>
> Neither. He simply uses your webmail interface. This is a regular
> user, with valid credentials. Where he got them from is a different
> question.
>
> Jan.
>
> --
> Do you need professional PHP or Horde consulting?
> http://horde.org/consulting/
>
> --
> Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
>
>
> ------------------------------
>
> Message: 6
> Date: Thu, 24 Jan 2008 14:30:25 -0500
> From: Ryan Steele <rsteele at archer-group.com>
> Subject: Re: [horde] Updating all Kronolith user permissions
> To: Jan Schneider <jan at horde.org>
> Cc: horde at lists.horde.org
> Message-ID: <4798E751.7040500 at archer-group.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Jan,
>
> I'm not quite sure how/where to access that API?  The DataTree section
> displays the values in questions, but I see nothing there that's
> editable - it only displays the array values.  TIA.
>
> Ryan
>
> --
> Ryan Steele
> Systems Administrator
> The Archer Group
>
>
>
> Jan Schneider wrote:
>> Zitat von Ryan Steele <rsteele at archer-group.com>:
>>
>>
>>> Hey list,
>>>
>>> I was poking around and it looks like I can do what I need by inserting
>>> rows in to horde_datatree_attributes, based on what I see from those who
>>> have the permissions I desire.  If there is a better way to do that than
>>> directly modifying the database, I'd like to know, however.  Thanks!
>>>
>>
>> Yes: use the share api.
>>
>> Jan.
>>
>>
>
>
> ------------------------------
>
> Message: 7
> Date: Thu, 24 Jan 2008 14:21:10 -0700
> From: "Ashley M. Kirchner" <ashley at pcraft.com>
> Subject: Re: [horde] Vacation setting...
> To: horde at lists.horde.org
> Message-ID: <47990146.4080103 at pcraft.com>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>
> Mike Peachey wrote:
>> his would seem to be simply a poorly-configure mail server.
>     Or as is the case here, an old server from 2003, running a very old
> version of wu-imap, procmail, and the likes.
>
>> E.G. /etc/aliases contains "ashley:anthony"
>> "ashley" would deliver to anthony
>> "\ashley" would deliver to ashley.
>>
>     However, I would not want the latter option above.  If there is an
> alias defined in /etc/aliases, I would want it to get honored, and not
> deliver direct to the recipient, but to whatever the alias is set to.
> So this might be going against the back-slash rule.
>
>
> --
> W | It's not a bug - it's an undocumented feature.
>   +--------------------------------------------------------------------
>   Ashley M. Kirchner <mailto:ashley at pcraft.com>   .   303.442.6410 x130
>   IT Director / SysAdmin / Websmith             .     800.441.3873 x130
>   Photo Craft Imaging                       .     3550 Arapahoe Ave. #6
>   http://www.pcraft.com ..... .  .    .       Boulder, CO 80303, U.S.A.
>
>
>
> ------------------------------
>
> Message: 8
> Date: Thu, 24 Jan 2008 13:35:13 -0800 (PST)
> From: Andrew Morgan <morgan at orst.edu>
> Subject: Re: [horde] Vacation setting...
> To: "Ashley M. Kirchner" <ashley at pcraft.com>
> Cc: horde at lists.horde.org
> Message-ID:
>         <Pine.LNX.4.64.0801241334340.30938 at shell.onid.oregonstate.edu>
> Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
>
> On Thu, 24 Jan 2008, Ashley M. Kirchner wrote:
>
>>> E.G. /etc/aliases contains "ashley:anthony"
>>> "ashley" would deliver to anthony
>>> "\ashley" would deliver to ashley.
>>>
>>    However, I would not want the latter option above.  If there is an
>> alias defined in /etc/aliases, I would want it to get honored, and not
>> deliver direct to the recipient, but to whatever the alias is set to.
>> So this might be going against the back-slash rule.
>
> If you don't use backslash, it is possible to get into a loop.  Just
> something to consider in cases like this...
>
>          Andy
>
>
> ------------------------------
>
> Message: 9
> Date: Fri, 25 Jan 2008 12:04:11 +0100
> From: Gerard Breiner <gerard.breiner at ias.u-psud.fr>
> Subject: [horde] lightning set the calendar in read mode
> To: horde at lists.horde.org
> Message-ID: <4799C22B.8080800 at ias.u-psud.fr>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>
> Hello,
>
> I set up lightning to reload each of 2 mn for testing. I created a new
> event and published succesfully on my webmail. After 2 mn lightning
> warned me with this error : ICS_FILE and set up my calendar in read mod.
> I suppose this is a well-known error but after searching on the net I
> didn't find anything.
> May you help me please ?
>
> Thanks by advance
>
> Gerard
>
>
> ------------------------------
>
>
> --
> Horde mailing list
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
>
>
> End of horde Digest, Vol 1969, Issue 1
> **************************************
>



More information about the horde mailing list